[Samba] Samba 3.0.4 ACL problem

Umberto Zanatta uzanatta at provincia.treviso.it
Tue Jul 13 12:39:17 GMT 2004 

You should set profile acls = no from smb.conf

Here you are a tipical share:

[FOO]
        profile acls = no
        path = /opt/foo
        write list = @aaaa, @bbb, @Administrators
        create mask = 660
        directory mask = 770
        comment = Foo share
        valid users = @aaa, @bbb, @Administrators
        inherit acls = yes
        map acl inherit = yes

You have to launch winbind if the PDC is another SAMBA o WINDOWS server
and do
the rights configurations on /etc/nsswitch.conf.

smb.conf
  winbind trusted domains only = yes
   idmap uid = 10000-20000
   idmap gid = 10000-20000
   winbind enum users = yes
   winbind enum groups = yes

Il mar, 2004-07-13 alle 14:22, Christophe SUIRE ha scritto:

> Hi again,
> 
> I have just see, that the problem is not link with the modification of 
> the file. In fact this problem appear when Windows change ACL 
> attribute, and i have found an other strange thing :
> 
> A user "jokic" create a new text file. On the server i have :
> -rwxrwx---+   1 root     informatique       62 2004-07-13 14:13 Nouveau 
> Texte seulement.txt
> This file as no ACL, but first strange thing is own by root !!!
> 
> On a second time, user "jokic" modify the attribute of the file and add 
> a new user "delestre" to read this one. Now i have :
> -r--rwx---+   1 root     informatique       62 2004-07-13 14:13 Nouveau 
> Texte seulement.txt
> 
> # file: Nouveau\040Texte\040seulement.txt
> # owner: root
> # group: informatique
> user::r--
> user:delestre:r-x
> group::---
> mask::rwx
> other::---
> 
> So the modification of the ACL attributes, add the new user with the 
> correct right, but remove the write attribute to the primary user, and 
> remove write and read to the primary group of the file !!!
> 
> Please help me !
> 
> > Hi,
> >
> > I have done a migration from Samba 2 to 3.0.4; and i have a very big 
> > problem with ACL.
> >
> > I have a file own by a user "drif" and group "informatique" with ACL 
> > attributes and unix attributes rwxrwx--- :
> > -rwxrwx---+   1 drif     informatique    68096 2004-07-13 11:01 fiche 
> > de migration.xls
> >
> > When an other user which is in "informatique" group modify this file, 
> > the new file is own by this user, but unix attribute for the user is 
> > set to read-only :
> > -r--rwx---+   1 jokic     informatique    68096 2004-07-13 11:01 fiche 
> > de migration.xls
> >
> > This problem appear only with files that have ACL attribute.
> > In my smb.conf i have set for shares "create mask = 0770" and "force 
> > create mode = 0770", and with samba 2 it was working !!
> >
> > Please help me with this very big problem, .. after modification users 
> > can only read there files !!
> > Thanks a lot for your help.
> >
> > Regards,
> >
> > -- 
> > Christophe Suire                       <christophe.suire at adelux.fr>
> >
> > -- 
> > To unsubscribe from this list go to the following URL and read the
> > instructions:  http://lists.samba.org/mailman/listinfo/samba
> >

_______________________
Umberto Zanatta
linuxDidattica

tel: +39 (335) 54 71 385
email: umberto.z at tin.it
web: http://linuxdidattica.org
_______________________

More information about the samba mailing list